Chore(deps): Bump snowflake-connector-python from 3.13.0 to 3.14.0

[dependabot]

Bumps snowflake-connector-python from 3.13.0 to 3.14.0.

Release notes

Sourced from snowflake-connector-python's releases.

3.14.0

• v3.14.0(March 03, 2025)
  • Bumped pyOpenSSL dependency upper boundary from <25.0.0 to <26.0.0.
  • Added a <19.0.0 pin to pyarrow as a workaround to a bug affecting Azure Batch.
  • Optimized distribution package lookup to speed up import.
  • Fixed a bug where privatelink OCSP Cache url could not be determined if privatelink account name was specified in uppercase.
  • Added support for iceberg tables to write_pandas.
  • Fixed base64 encoded private key tests.
  • Fixed a bug where file permission check happened on Windows.
  • Added support for File types.
  • Added unsafe_file_write connection parameter that restores the previous behaviour of saving files downloaded with GET with 644 permissions.

3.13.2

• v3.13.2(January 29, 2025)
  • Changed not to use scoped temporary objects.

3.13.1

• v3.13.1(January 29, 2025)
  • Remedied SQL injection vulnerability in snowflake.connector.pandas_tools.write_pandas. See more GHSA-2vpq-fh52-j3wv
  • Remedied vulnerability in deserialization of the OCSP response cache. See more: GHSA-m4f6-vcj4-w5mx
  • Remedied vulnerability connected to cache files permissions. See more: GHSA-r2x6-cjg7-8r43

Commits

• e527472 SNOW-1940996 no-op auth for Stored Proc (#2182)
• 4e167b8 SNOW-1959352 disable test_connection::test_bogus (#2192)
• 24ff40d Update version 3.14.0 in requirements (#2191)
• 63417ba 3.14-Update Requirements (#2190)
• a4c2162 Update 3.14 release notes (#2188)
• 114750b SNOW-1944208 add unsafe write flag (#2184)
• 900a676 SNOW-1949003: Skip test until Snowflake 9.4 release (#2185)
• 7ed7682 SNOW-1934035 add support for file (#2177)
• ba15553 SNOW-1922893: Remove Windows permissions check (#2173)
• 8a2b8ba SNOW-921045 Add wiremock tests support (#2170)
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)